CVE-2025-47827 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	4.6 MEDIUM	PHYSICAL	LOW	NONE	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
mitre	CNA	---				---
CISA-ADP	ADP	4.6 MEDIUM	PHYSICAL	LOW	NONE	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 63%

Vendor	Product	Version
igel	igel_os	𝑥 < 11.01.100
microsoft	windows_10_1507	𝑥 < 10.0.10240.21161
microsoft	windows_10_1507	𝑥 < 10.0.10240.21161
microsoft	windows_10_1607	𝑥 < 10.0.14393.8519
microsoft	windows_10_1607	𝑥 < 10.0.14393.8519
microsoft	windows_10_1809	𝑥 < 10.0.17763.7919
microsoft	windows_10_1809	𝑥 < 10.0.17763.7919
microsoft	windows_10_21h2	𝑥 < 10.0.19044.6456
microsoft	windows_10_22h2	𝑥 < 10.0.19045.6456
microsoft	windows_11_22h2	𝑥 < 10.0.22621.6060
microsoft	windows_11_23h2	𝑥 < 10.0.22631.6060
microsoft	windows_11_24h2	𝑥 < 10.0.26100.6899
microsoft	windows_11_25h2	𝑥 < 10.0.26200.6899
microsoft	windows_server_2012	-
microsoft	windows_server_2016	𝑥 < 10.0.14393.8519
microsoft	windows_server_2019	𝑥 < 10.0.17763.7919
microsoft	windows_server_2022	𝑥 < 10.0.20348.4294
microsoft	windows_server_2022_23h2	𝑥 < 10.0.25398.1913
microsoft	windows_server_2025	𝑥 < 10.0.26100.6899

𝑥

= Vulnerable software versions

Known Exploits!

Common Weakness Enumeration

CWE-347 - Improper Verification of Cryptographic Signature
The software does not verify, or incorrectly verifies, the cryptographic signature for data.

Vulnerability Media Exposure

[GERMAN] Patchday XXL: Microsoft schließt teils aktiv attackierte Schwachstellen
Im Zuge einer besonders ausgiebigen Patchrunde hat Microsoft unter anderem kritische Azure- und Office-Lücken behoben sowie drei aktive Exploits ausgehebelt.
Published: 2025-10-15T07:20:00+00:00
[GERMAN] Rekord-Patchday: Microsoft schließt fast 200 Sicherheitslücken
Im Vergleich zum Vormonat liefert Microsoft zum Oktober-Patchday mehr als doppelt so viele Patches aus. Attacken auf Windows-Nutzer laufen schon. ( Patchday , Microsoft )
Published: 2025-10-15T09:04:04+02:00
[GERMAN] Support-Ende für Windows 10 und Updates für Windows 11 25H2
Der Oktober-Patchday umfasst 177 sicherheitsrelevante Korrekturen für Windows, Office, Azure, Edge, Hyper-V, Exchange, .NET, Visual Studio, BitLocker und Xbox. Mit den zusätzlich einbezogenen Drittanbieter-Einträgen steigt die Gesamtzahl auf 195 CVEs. 16 davon sind kritisch, drei werden aktiv ausgenutzt, drei sind öffentlich bekannt.
Published: 2025-10-15T08:17:00+02:00
[ENGLISH] Two New Windows Zero-Days Exploited in the Wild — One Affects Every Version Ever Shipped
Microsoft on Tuesday released fixes for a whopping 183 security flaws spanning its products, including three vulnerabilities that have come under active exploitation in the wild, as the tech giant officially ended support for its Windows 10 operating system unless the PCs are enrolled in the Extended Security Updates (ESU) program. Of the 183 vulnerabilities, eight of them are non-Microsoft
Published: 2025-10-15T14:53:00+05:30
[GERMAN] Microsoft Windows: Mehrere Schwachstellen
Ein Angreifer kann mehrere Schwachstellen in Microsoft Windows Server, Microsoft Windows Server 2012, Microsoft Windows Server 2012 R2, Microsoft Windows 10, Microsoft Windows Server 2016, Microsoft Windows Server 2019, Microsoft Windows, Microsoft Windows Server 2022, Microsoft Windows 11 und Microsoft Windows Server 2025 ausnutzen, um Remote Code Execution, Privilegieneskalation, Datenexfiltration oder Systemabstürze zu verursachen.
Published: 2025-10-14T22:00:00+00:00
[ENGLISH] ⚡ Weekly Recap: F5 Breached, Linux Rootkits, Pixnapping Attack, EtherHiding & More
It’s easy to think your defenses are solid — until you realize attackers have been inside them the whole time. The latest incidents show that long-term, silent breaches are becoming the norm. The best defense now isn’t just patching fast, but watching smarter and staying alert for what you don’t expect. Here’s a quick look at this week’s top threats, new tactics, and security stories shaping
Published: 2025-10-20T17:57:00+05:30

References

https://github.com/Zedeldi/CVE-2025-47827

https://github.com/Zedeldi/igelfs

https://github.com/Zedeldi/CVE-2025-47827

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2025-47827